[nsp] [Article] Security flaw threatens Cisco Web site
Jared Mauch
jared at puck.nether.net
Mon Dec 23 01:54:00 EST 2002
On Sat, Dec 21, 2002 at 08:42:58PM +0100, Niels Bakker wrote:
> * hank@att.net.il (Hank Nussbacher) [Sat 21 Dec 2002, 20:36 CET]:
> > http://www.zdnet.com.au/newstech/security/story/0,2000024985,20270791,00.htm
>
> Where on the cisco website are end users allowed to place content of
> their own making, which is a prerequisite for a successful exploitation
> of cross-site scripting vulnerabilities?
open a tac case? ;-)
you can type your own random text in there.
i suspect it's related.
- jared
--
Jared Mauch | pgp key available via finger from jared@puck.nether.net
clue++; | http://puck.nether.net/~jared/ My statements are only mine.
More information about the cisco-nsp
mailing list